bhj 24 Posted November 24, 2008 Share Posted November 24, 2008 Philipp Lenssen spotted a post by Brandon at GeekCondition that explains the general idea behind an attack that can be used to set up filters in your Gmail account without your knowledge. It’s important to be aware of these kind of things so you can better protect yourself. In order for this to work, someone has to first steal your Gmail cookie — bad guys are always looking for new ways to do this, and according to Brandon, there is at least one (but probably several) outstanding methods that can be used to get your cookie. As long as you practice safe browsing techniques, the risk of your Gmail account being compromised is significantly lower. Here are some things you can do to protect yourself. 1. When you aren’t using your Gmail, log out. Staying logged in is handy, but it makes these kind of attacks possible. 2. Don’t visit websites you don’t trust. That sounds pretty obvious, but it’s just as important as making sure your Gmail account is logged out when you’re not using it. 3. Use NoScript if your browser is Firefox. This adds an additional (and very powerful) layer of security between you and the bad guys. There’s nothing similar for Internet Explorer or Google Chrome that I’m aware of. It’s important to note that these problems aren’t limited to Gmail — any website that uses cookies to authenticate requests can be taken advantage of the same way. Taking the security measures above will help protect all your online accounts too. Link to comment
tomi 0 Posted November 24, 2008 Share Posted November 24, 2008 (edited) Oh nice!! I use noscrpit and follow all the "orders" too. Seems trust-worth and safe. Ahh and NoScript is cool!! P.S. Btw gmail has knew skin, eh? Got to take a try! Nice find, and thanks! Edited November 24, 2008 by tomi Link to comment
bhj 24 Posted November 24, 2008 Author Share Posted November 24, 2008 P.S. Btw gmail has knew skin, eh? yep I saw Link to comment
1Razor 0 Posted December 31, 2008 Share Posted December 31, 2008 First post since joining! Wanted to say thanks for the heads up on NoScript, looks very good on first impressions. I also have Flashblock installed which helps speed up page downloads also. It just gives a small block instead of running flash anims immediately, so if you want to see the anim just click on it! Link to comment
gogoblender 3,071 Posted January 1, 2009 Share Posted January 1, 2009 First post since joining! Wanted to say thanks for the heads up on NoScript, looks very good on first impressions. I also have Flashblock installed which helps speed up page downloads also. It just gives a small block instead of running flash anims immediately, so if you want to see the anim just click on it! Welcome to DarkMatters, 1Razor! I'm super careful actually with both gmail and msn mail. I know they're hot for hackers, and I try as often as I can to not stay logged into the accounts if not using them. Alas...so convenient to keep 'em open gogo Link to comment
Arafinwe 0 Posted January 1, 2009 Share Posted January 1, 2009 Welcome to DarkMatters, 1Razor! I'm super careful actually with both gmail and msn mail. I know they're hot for hackers, and I try as often as I can to not stay logged into the accounts if not using them. Alas...so convenient to keep 'em open gogo Indeed it is convenient, and since I use Webmail notifier I have to stay logged in for it to work. But like Tomi I use NoScript, and also R.I.P, Better Privacy 1.22 and goolash. (Funny name that one for a extension. ) Link to comment
1Razor 0 Posted January 1, 2009 Share Posted January 1, 2009 I'm lucky in that not many people mail me so I don't have to keep Thunderbird open all the time, less chance for any problems Link to comment
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now